[
https://issues.apache.org/jira/browse/RANGER-5588?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Chinmay N Hegde updated RANGER-5588:
------------------------------------
Description:
After the patch https://issues.apache.org/jira/browse/RANGER-5539 RANGER-5539 :
Add Authorisation Check for doAsUser Parameter
Ranger admin login Via Knox proxy is failing and it should be fixed.
It was failing because the knox request having hadoop-jwt cookie was passing to
RangerJwtAuthFilter, But it shouldn't so this fix will handle this
Also according to JWT RFC, cookie based header is not used for JWT.
[https://datatracker.ietf.org/doc/html/rfc6750]
was:
After the patch https://issues.apache.org/jira/browse/RANGER-5539 RANGER-5539 :
Add Authorisation Check for doAsUser Parameter
Ranger admin login Via Knox proxy is failing and it should be fixed.
> Remove cookie based JWT authentication from JWT files
> -----------------------------------------------------
>
> Key: RANGER-5588
> URL: https://issues.apache.org/jira/browse/RANGER-5588
> Project: Ranger
> Issue Type: Bug
> Components: Ranger
> Reporter: Chinmay N Hegde
> Assignee: Chinmay N Hegde
> Priority: Major
>
> After the patch https://issues.apache.org/jira/browse/RANGER-5539 RANGER-5539
> : Add Authorisation Check for doAsUser Parameter
> Ranger admin login Via Knox proxy is failing and it should be fixed.
> It was failing because the knox request having hadoop-jwt cookie was passing
> to RangerJwtAuthFilter, But it shouldn't so this fix will handle this
> Also according to JWT RFC, cookie based header is not used for JWT.
> [https://datatracker.ietf.org/doc/html/rfc6750]
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
